Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/NKSssYG1YnkYM_5cH4N0KMUbjAs.roa
File: NKSssYG1YnkYM_5cH4N0KMUbjAs.roa (raw, json)
Hash identifier: A+VPKFPnVNyqg/ebT00VSbuFk0W89UVzJE/EfwFxfiE=
Subject key identifier: 34:A4:AC:B1:81:B5:62:79:18:33:FE:5C:1F:83:74:28:C5:1B:8C:0B
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018CD06BB33CC286D9FA9B186E31E1FC3260
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/NKSssYG1YnkYM_5cH4N0KMUbjAs.roa
Signing time: Wed 03 Jan 2024 17:42:48 +0000
ROA not before: Wed 03 Jan 2024 17:42:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42337
IP address blocks: 178.239.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 18:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d0:6b:b3:3c:c2:86:d9:fa:9b:18:6e:31:e1:fc:32:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jan 3 17:42:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=34a4acb181b562791833fe5c1f837428c51b8c0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:40:7a:e6:bf:ea:3e:1a:ec:98:d7:93:1e:c1:
a1:d5:bd:92:aa:6c:9f:af:ca:a3:4f:91:a0:2e:47:
ad:f9:d8:ce:ec:c4:fd:76:2a:95:45:2d:eb:63:a2:
c2:e9:4b:8f:22:06:1e:7f:93:c6:dc:2c:f8:44:fb:
e9:a2:97:2b:61:ee:29:59:87:d8:a7:0f:c6:78:1d:
72:d7:23:e9:45:f9:20:eb:0b:16:a2:a5:b1:8e:14:
05:88:ba:38:a9:5e:d6:26:43:0f:29:f1:34:5c:f6:
4d:0d:72:7c:c7:12:d9:58:ab:ea:6f:6e:2a:ef:9e:
69:12:09:86:4d:4f:1e:16:f2:ce:51:35:b9:47:23:
f1:cf:ab:06:76:36:46:fb:50:9f:78:d7:76:48:a5:
51:30:04:98:32:1d:32:e0:03:51:a2:ac:71:6c:63:
fe:76:35:70:f0:d8:5a:5b:1b:8f:ac:92:6c:87:29:
0e:8e:ac:cc:87:54:f8:83:e3:64:e1:ca:75:9b:52:
5c:bd:d3:89:fc:b3:6f:c1:a9:76:f6:fe:df:85:aa:
ed:99:9f:39:80:4c:74:12:0f:d8:91:a7:c5:74:a0:
f9:2d:e3:0b:ac:79:bd:90:b8:19:48:1d:7a:89:4c:
fa:0a:7e:75:49:5b:f1:cf:26:ba:26:b3:68:a9:0f:
69:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A4:AC:B1:81:B5:62:79:18:33:FE:5C:1F:83:74:28:C5:1B:8C:0B
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/NKSssYG1YnkYM_5cH4N0KMUbjAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.151.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:1f:a9:fb:6a:76:56:22:1e:1b:8a:2c:6a:9a:26:b8:02:c9:
46:9d:e3:77:06:aa:d0:cd:59:c5:86:d9:35:cc:a3:5e:e4:93:
64:7e:8e:fc:d0:aa:c9:c1:76:9f:ea:4d:10:ca:70:4f:ad:ac:
a1:aa:44:3d:08:d1:b7:40:68:cf:0d:35:2b:a0:79:3f:1d:c8:
01:ad:e5:4b:49:41:cd:b7:34:2e:20:1c:85:eb:e3:a4:87:c3:
e1:b2:bb:e6:b0:ee:0b:aa:d7:a9:c0:54:b5:07:53:d4:ec:19:
b3:79:4e:bb:2f:c0:66:0d:71:3e:d1:7f:c9:b5:5c:7c:4f:9b:
17:df:0f:73:b1:00:fb:15:30:22:91:bd:88:10:c4:ac:ca:ff:
e1:cd:b1:9a:9b:33:48:bd:ec:77:53:fb:67:85:39:1a:76:f8:
0a:b2:f9:f2:d3:76:18:8c:9c:d2:04:0c:c8:01:8e:92:34:df:
e4:c1:01:ce:f9:2d:cf:64:5f:94:2c:98:97:e4:01:d8:ce:c7:
67:3c:69:bc:63:1e:9f:cf:ff:60:99:15:59:4d:08:a4:b0:66:
b8:36:e5:80:98:93:74:82:8b:f7:a3:97:c8:b0:49:8b:38:aa:
2c:35:53:50:2b:77:2d:bc:a9:57:c9:80:01:cc:29:e3:ec:86:
ff:1a:50:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 2 23:02:46 2024 by rpki-client on console-ams.rpki-client.org